My sincere apologies to all.
The "hack" wasn't a "hack" at all, BTW. It was from an email. I chose to share this in order to avoid violations of applicable laws.
The attack that was used to "close" the thread, which I didn't look at, at first, was actually an injection vulnerability (also OWASP Top 10).
Attachments: